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{54) Abstract Title 

System for communicating over a public network 



(57) A system for communicating with a remote service 
over a public network 18, such as the internet includes a 
client device 10 with a memory card 28 or the like, a card 
reader 26 and a public network communication device 
such as a persona] computer or television, and a 
processor unit, such as a central gateway 12, which Is 
located remotely from the client device. The memory card 
includes user details which are transmitted by the client 
device to the processor unit, and may be encrypted. The 
card reader may activate communication with the 
processor unit upon Insertion of the memory card, which 
may be a smart card or magnetic card. The processor unit 
may determine which of a plurality of services 14,16 a user 
is authorised to access. The system provides for secure 
communication without burdening the user with 
encryption or authorisation tasks. 
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At least one drawing originally filed was informal and the print reproduced here is taken from a later filed formal copy. 



1/2 



Smart Card Reader 
26 — 



Application & User 
Interface / Presentation 



Network Protocol (TCP/IP) 



Client Software Component 



Network Protocol (TCP/IP) 



10 
i 

Intelligent Client 
Device 



24 



30 
32 

36 
38 



28 

C Public 
18 


^ — - — V. 
Network A 


Encryption and Network Protocol Stack 


Authentication & 
Validation 


HTTP Server for 
Central Gateway 
Management 


Server Access 
Permissions 


Read and Write to 
Verification Database 


Authentication & Attachment to Desired Service 



12 
i 

Central 
Gateway 

— 34 




Desired Services 

Figl 



2/2 



Insert Card 




50 

r 


Enter PIN At 
Prompt 




52 

r 



Reject User / 
Offer Help Desk 
Service 



Invalid 




Valid 



Authenticate 
User for Desired 
Service 



56 



54 



60 



STOP 



62 



58 



Accessor 
Transaction on 
Desired Service 





r 




Remove Card 




64 



c 



STOP 



Fig 2 



2354102 



SECURITY SYSTEM 

The present invention relates to a security system, for use for example in accessing 
remote services such as on the Internet 

5 With the advent of modem technology, a growing number of transactions are being 
carried out by the user across insecure networks. These can be, for example, 
transactions involving confidential data and money for payment or investment With 
such transactions there are problems with security, fraud and so on. Various security 
systems have been devised, such as use of personal identification numbers, encryption of 

10 transmissions. While these systems usually work well for the particular environment for 
which they have been designed, they canbea nuisance to use and can be difficult or 
expensive to implement for a new service provider. 

Systems have also been developed for Internet use. These systems concentrate on 
15 authentication of the user and then, once this has been established, provide for un- 
encrypted connection to the service. When particular transactions are undertaken, the 
service determines whether encryption is necessary, for example to secure credit card 
details. Other solutions require entry of credit card details for each transaction. These 
systems inevitably must provide a balance between security and user convenience as the 
20 encryption mechanisms used cause additional work for and complication to the user. 

The present invention seeks to provide an improved security system. 

According to an aspect of the present invention, there is provided a security system for 
25 communicating with a remote service over a public network including a user card or 

other memory device, a user located card or memory device reader, a user located public 
network communication device and a processor unit located remotely from the user 
located public network communication device, wherein the user card includes user details 
and the user located public network communication device is operable to transmit the 
30 user details to the processor unit 



i 
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Advantageously, the processor unit is operate to carry out encryption between ft and the 
user and to provide to the user a transparent path to the service. Thus, the user need not 
be aware of any security steps taken or any encryption system used, this being carried 
out by the card reader and the processor unit or central gateway. 

5 

The card may be any suitable device which can store user information and, preferably, 
encryption data. The card, can for example be a smart card, a magnetic card such as a 
credit/debit card or store loyalty card or any other suitable device. In addition to the 
card, the user may be required to input a secret identification code, such as an 
l o identification number. 

In the preferred embodiment, the system provides for the user to insert the card into 
his/her card reader and to initiate the connection to the processor unit or central gateway. 
Once the connection is made, the processor unit obtains the relevant data from the card 

15 and upon verification by the identification code, allows the user access to the authorised 
service without any intermediate tasks, such as requirements to encrypt or decrypt 
transmitted data, to provide other user details and, where appropriate account or payment 
details. Thus, as with the preferred embodiment, all communications between the 
processor unit and the user can be encrypted, without the user necessarily being aware of 

20 or involved in this encryption. The communication between the user and the processor 
unit can therefore be totally secure yet without user inconvenience. 

Advantageously, communications between the service and the processor unit, which are 
preferably carried out via a secure link, need not be encrypted. 

25 

The splitting of the encryption from the service results in being able to provide a 
dedicated encryption device, the processor unit, which can therefore be designed to 
maximise encrypted communication efficiency. Typically, encryption of all 
communications from the service unit is not practicable because the service unit is not 
30 designed for such a task and even if it were it would result in a loss of efficiency in 
providing the service itself. 
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In the preferred embodiment, the processor unit is also able to determine which of a 
plurality of services the user is authorised to access and/or the level of access such as 
spending limit, and to control access to the service or relevant service on this basis. It 
5 can also or alternatively undertake transactions against an account identified by the card. 

An embodiment of the present invention is described below, by way of example only, 
with reference to the accompanying drawings, in which: 

10 Figure 1 is a schematic diagram of an embodiment of security system coupled to a 
processor unit or central gateway and a service; and 

Figure 2 is a flow chart of an example of validation routine for use with the system of 
Figure L 

15 

Referring to Figure I, the embodiment of security system shown is designed for 
communications through the Internet or a similar public network. 

The system includes an intelligence client device 10, which may be a personal computer, 
20 television, or any other suitable device which can communicate with a remote system. A 
processor unit, in this example a central gateway 12 is coupled between the client device 
10 and one or more service units 14. 

Communication between the client device 10 and the central gateway 12 is, in this 
25 embodiment, via a public network 18 such as the Internet. Communication between the 
central gateway 12 and the service units 14, 16 is, on the other hand, via a private 
network 20 which cannot be accessed by the public. 



30 



The client device 10 is provided with an application and user interface 22; which can be 
the usual computer devices such as monitor, keyboard and software in the case that it is a 
personal computer; the screen and a suitable keyboard or keypad in the case that the 
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device 10 is a television or any other suitable device. The device 10 could also be a 
portable telephone with suitable display and keypad. 

The device 10 also includes suitable network protocol 24 for allowing communication to 
5 the gateway 12 through the chosen network 18 or other public transmission medium. 

The device 10 also includes a card reader 26 designed for reading the card-type chosen 
for the system and a card 28 which is specific to that user. The card 28 could be a smart 
card or magnetic card of the types well known or any other portable memory device. It 
10 is envisaged that the card 28 could have other functions in addition to the security 
function for this system, for example it could also be a credit/debit card, store loyalty 
card and the like. 

The card 28 has stored thereon one or more user identifiers, one or more encryption keys 
15 and the desired service information, that is details of die service to which die user wants 
access. His/her level of authorisation in the service and so on will be determined by the 
central gateway 12. 

The card reader 26 is designed, in the preferred embodiment, to be able to detect the 
20 insertion of the card 28 thereinto and in response to such insertion to commence 
immediately communication with the gateway 12 via the client device 10. 

The central gateway 12 includes an encryption and network protocol stack 30 designed to 
allow communication via the chosen public network 18 and to provide encryption of all 

25 communications between itself and the client device 10. It also includes an 

authentication and validation unit 32 for authenticating the client data from the client card 
28. The authentication and validation unit 32 is coupled to a verification database 34 of 
the gateway 12 in which is stored the identification data of all the users registered for the 
services 14,16. The database 34 may be provided either within the gateway 12 or in a 

30 remote database 34' accesses through secure network 20. 
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The authentication and validation unit 32 is also coupled to server access permission unit 
36 designed to control the type of access to the service units 14,16 in dependence upon 
the user's authority. 



5 Also provided in the gateway 12 are a typical HTTP server for management of the 
gateway 12 and an authentication and attachment unit 38 for communicating with die 
desired services 14,16 and with any remote verification database 34\ 

The central gateway 12 is designed specifically for encrypting all communications over 
10 the public network 18 and for carrying out the authentication procedure. 

Hie operation of the this embodiment will now be described with reference to Figure 2. 

Insertion 50 of the card 28 into the card reader 26 prompts the card reader 26 to 
15 commence automatically the connection to the gateway 12. For this purpose, card reader 
26 activates a software component in the device 10 to establish a communication link 
with the gateway 12 on the basis of information stoned on the card 28 about the location 
on the Internet and access details of the gateway 12. 

20 When a connection with the gateway 12 is established, the gateway 12 requests the user's 
personal identification code which is then inputted 52 at a suitable prompt on the user 
interface 22. 



Validation 54 of the user's details and identification code is carried out either internally 
25 of the gateway 12, by the units 32 and 34, or externally at the verification database 34*. 

If the gateway 12 determines 54 that the user's identification code is invalid, the user is 
rejected 56 and the connection is cut 58. On the other hand, if it is determined 54 the 
user's identification code is valid, the gateway 12 determines 60 title desired service 14, 
30 16 and level of service to be provided and connects 62 to the desired service unit 14, 16. 
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During the connection to the desired service 14, 16, all data transfers between the 
gateway 12 and user device 10 are encrypted on the basis of the encryption keys on the 
user's card 28 and within verification database 34, while all data transfers between the 
gateway 12 and the service units 14. 16 through the private artwork 20 are not encrypted 
5 for ease of access and for increased efficiency. In practice, the user will not be aware of 
the encryption between him/her and die gateway 12 as this will be carried out as a 
background task. Moreover, the user will not need to re-confirm his/her identity or 
financial details as these will be provided by the card 28 or gateway 12. 

10 The gateway 12, in some embodiments, records the activities of the client, such as 
transaction details, either within the gateway 12 or in a remote memory accessed via a 
private network. 

Disconnection from the services 14, 16 is, in this embodiment, effected simply by 
15 removing 64 the card 28 from the card reader 26. 

Thus, connection is made by a simple two step process of inserting the card 28 into the 
reader 26 and entering the user identification code and disconnection is effected by 
removing the card 28 from the card reader 26. The user is not involved in any other 
20 authentication or encryption process and need not re-enter personal details. 

This system can be used for any remote service, including business to consumer (in 
which case the card could be designed also to function as a store or credit card), business 
to business (for example for transactions on account) and for internal networking (where 
25 the activity of staff, for example, needs to be secured). 

It will be apparent from the above that the system can provide simple but absolutely 
secure access to a remote service. Moreover, by identifying the user to the desired 
service, user access can be customised. By removing the need for entry of account 
30 details, transactions into the desired service become quicker and less risky for the user's 
perspective. 
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Performance of the services can also be enhanced by carrying out the encryption tasks 
within the gateway rather than in the service units. 

5 In addition, the service company can establish a relationship with the user by providing 
the user with the card and, possibly, also wife the card reader. 

It will be apparent that the card 28 and card reader 26 could be configured to 
communicate with a plurality of separate gateways 12. 
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CLAIMS 



1 . A security system for communicating with a remote service over a public network 
5 including a user card or other memory device, a user located card or memory device 

reader, a user located public network communication device and a processor unit located 
remotely from the user located public network communication device, wherein the user 
card includes user details and the user located public network communication device is 
operable to transmit the user details to the processor unit. 

10 

2. A security system according to claim 1, wherein the processor unit is operable to 
carry out encryption between itself and the user. 

3. A security system according to claim 1 or 2, wherein the card has stored thereon 
15 user information and, preferably, encryption data. 

4. A security system according to claim 3, wherein the card is a smart card, a 
magnetic card or any other suitable device. 

20 5. A security system according to any preceding claim, wherein the card reader is 
operable to activate communication with the remote processor means upon insertion of a 
card thereinto. 

6. A security system according to any preceding claim, wherein the processor unit is 
25 operable to encrypt substantially all communications between the user and itself. 

7. A security system according to any preceding claim, wherein the processor unit is 
operable to determine which of a plurality of services a user is authenticated onto the 
desired service, 

30 
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8. A security system substantially as hereinbefore described with reference to and as 
illustrated in the accompanying drawings. 
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provide a cable television system providing conditional 
access to a service. SOLUTION: Tne cable television 
system includes a headend from which service 
"instances", or programs, are broadcast and a plurality 
of set top units for receiving the instances and 
selectively decrypting these instances for display to 
system subscribers. The service instances are 
encrypted, by using public and/or private keys provided 
by service providers or central authorization agents. 
Keys, used by the set tops for selective decryption may 
also be public or private in nature, and these keys may 
be reassigned at different times, to provide a cable 
television system in which the anxiety for violation 
actions is minimized. COPYRIGHT: (C)2005,JPO8tNCIPI< 
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4) Family number: 33529421 ( JP200S253109 A2) 
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text | status I citations 
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Title: 

Priority: 

priority Mao 



CONDITIONAL ACCESS SYSTEM 
US19970054575P 19970801 



US19980126921 19980731 



Family: Publication number Publication date Application number Application date Link 

FgmltY E xplorer JP20052S3109 A2 20050915 JP20050120425 20050418 Q 

WO9909743 A2 19990225 WO1998US16079 199B0731 

WO9909743A3 19990527 WO1998US16079 19980731 

SCIENTIFIC ATLANTA 



SCIENTIFIC ATLANTA INC 

AKINS GLENDON L III ; PALGON MICHAEL S ; 



PINDER HOWARD G ; WASILEWSKI ANTHONY 3 



Assignee(s): 

(std): 

Assignee(s): 

Inventor(s): 

(std): 

Inventor's); AKINS GLENDON L 

Designated AL AM AT AU AZ BA 8B BE BF BG 8J BR BY CA CF CG CH CI CM CN CU CY CZ OE DK EE ES Fl f 
states: GA GB GE GH GM GN GR GW HR HU ID IE 1L IS IT IP KE KG KP KR KZ LC LK LR LS LT LU IV M 

MO MG MK ML MN MR MW MX NE NL NO NZ PL PT RO RU SD SE SG SI SK SL SN SZ TD TG TJ * 
TR TT UA UG UZ VN YU ZW 

International H04H1/00 H04L9/06 H04N5/00 H04N7/16 H04N7/167 H04N7/173 (Advanced/Invention); 
Class (IPC 8): H04H1/00 H04L9/08 H04N5/00 H04N7/16 H04N7/167 H04N7/173 (Core/ Invention) 

International H04L9/08 H04N7/167 
dass (IPC 1- 
7): 

European H04N5/00M4 H04N7/167D H04N7/16E2 
class: 

Cited WO9704553. USS381481, US5O29207, U54887296, US46646LS, US4736422, US4613901, 

documents: 

Abstract: 

Source: JP2OO5253109A2 PROBLEM TO BE SOLVED: To 
provide a cable television system which provides 
conditional access to services. SOLUTION: This cable 
television system includes a headend from which service 
"instances" or programs are broadcast and a plurality of 
set top units for receiving the instances and selectively 
decrypting the Instances for display to system 
subscribers. The service instances are encrypted using 
public keys and/or private keys provided by service 
providers or central authorization agents. Keys used by 
the set tops for a selective decryption may atso be 
public or private in nature, and such keys may be 
reassigned at different times to provide a cable 
television system in which piracy concerns are 
minimized. COPYRIGHT: (C)200S,JPO&NCIPI< 
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CRYPTOGRAPHIC KEY SYSTEM 



Pub. No.: 2006-180562 [JP 2006180562 A ] 
Published: July 06, 2006 (20060706) 
Inventor: SAITO MAKOTO 

MOMIKJ JUNICHI 
AppUcant: INTARSIA SOFTWARE LLC 
Application No.: 2006-082675 [JP 200682675] 

Division of 07-346095 [JP 95346095] 
Filed: March 24, 2006 (20060324) 

Priority: 06-309292 [JP 94309292], JP (Japan), December 13, 1994 (19941213) 

International Patent Class (v8 + Attributes) 

IPC + Level Value Position Status Version Action Source Office: 

H04L-0009/08 A I F B 20060101 20060609 H JP 



ABSTRACT 



PROBLEM TO BE SOLVED: To provide a concrete structure for applying a cryptographic key 
system to a television system, a database system or an electronic commercial transaction system or 
the like. 

SOLUTION: This system consists of a broadcasting station, a database, a receiving apparatus, a 
data communications apparatus and a user terminal. As a cryptographic key system, a secret-key 
system, a public-key system, and a digital signature system are used. The keys used in the system 
are either encrypted, or remain uncrypted to be supplied by broadcasting. The system is effective in 
preventing the unauthorized use of the database system, managing copyrights, and in pay-per-view 
systems and video-on-demand systems. Further, the system is effective in realizing an electronic 
market which uses an electronic data information system. 

COPYRIGHT: (C)2006,JPO&NCIPI 
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RECORDING ENCODE METHOD FOR HIGH FIDELITY TELEVISION SIGNAL 
JP19910352059 19911213 



Family: 



Assignee's): 
Inventor's): 



Publication number Publication date Application number Application date Lint 

JP3185806B2 20010711. JP19910352G59 199U213 Q 

JPS1 68039 A2 19930702 JP19910352059 19911213 Q 

SONY CORP 

ISHIMARU HIROYOSHI 

International H04N11/22 H04N5/907 H04N9/80 H04N9/81 (Advanced/Invention); 
Class (IPC 8): H04N1 1/06 H04N5/907 H04N9/80 H04N9/8I (Core/Invention) 

International H04NU/22 H04N5/907 H04N9/80 H04N9/81 
dass (IPC 
7): 

Abstract: 

Source: JP5168039A2 PURPOSE: To encode a unit signal 
(TDM signal) for recording from a high fidelity television 
signal by controlling reading of plural output ports while 
using a serial access memory equipped with the plural 
output ports. CONSTITUTION: Memories 146A and 146B 
are serial access and two output ports are respectively 
provided In each memory, Then, write of Input data VA 
and VB is controlled by memory controllers 147A and 
147B, and reading of data from the respective output 
ports is independently controlled. Namely, TDM signals 
are written In memories 146A and 146B In the order of a 
luminance signal and a chrominance signal. In the case 
of reading, the same data are read from two output 
ports while deviating read timing, color difference signal 
data are extracted from the preceding output port, 
luminance signal data are extracted from the other 
output port, both data are synthesized and therefore, 
the required TDM signals are obtained. 
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